Remove AD domain from Web UI Login page
Is there a way to remove the option to select the active directory domain from the web UI login page? Our DC is getting hammered with invalid login attempts.
0
Sign In to comment.
Is there a way to remove the option to select the active directory domain from the web UI login page? Our DC is getting hammered with invalid login attempts.
Comments
Best practice would be to restrict WebUI (and related management) to internal IP addresses (including VPN users), or if you must have external IP addresses, specific IP addresses.
If you have "Any-External" in your WatchGuard management policies, strongly urge you to address that ASAP https://techsearch.watchguard.com/KB?type=Article&SFDCID=kA10H000000XeAtSAK&lang=en_US
That said, not sure one can remove the login domain option from WebUI as that would be problematic if you say have a local admin the same name as a user in your domain environment.
I know one can use something like FIREBOX-DB\localusername to authenticate, which happens on VPN connections, but presumably this is by design - maybe worth a feature request?
Thanks for that.
You're unable to remove the AD domain if it's been added to the WebUI management page. By default, this is not accessible to any-external -- if you've added any-external to these policies, I'd strongly suggest removing it.
WebUI and Policy Manager will both warn you if you've exposed those policies to the internet via any-external since Fireware 12.7.2.
-James Carson
WatchGuard Customer Support